This project's continuity is at risk. If Internet routing security is important to you, throw a lifeline! Please donate to the 2026 fundraising campaign.
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/QgtZQ0805OCM2cokT2qKD6cPctM.roa File: QgtZQ0805OCM2cokT2qKD6cPctM.roa (raw, json) Hash identifier: DavE4PxcjRUDAkMRKuUWGBvO9WpwG+932yjIkhXYMNA= Subject key identifier: 42:0B:59:43:4F:34:E4:E0:8C:D9:CA:24:4F:6A:8A:0F:A7:0F:72:D3 Certificate issuer: /CN=1027a8a61299b80a3e71d1a981427ec00b849d17 Certificate serial: 019B7B369C666C70132C14A251463B2E30D6 Authority key identifier: 10:27:A8:A6:12:99:B8:0A:3E:71:D1:A9:81:42:7E:C0:0B:84:9D:17 Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ECeophKZuAo-cdGpgUJ-wAuEnRc.cer Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/QgtZQ0805OCM2cokT2qKD6cPctM.roa Signing time: Thu 01 Jan 2026 20:18:54 +0000 ROA not before: Thu 01 Jan 2026 20:18:54 +0000 ROA not after: Thu 01 Jul 2027 00:00:00 +0000 asID: 34766 IP address blocks: 95.142.110.0/24 maxlen: 24 185.138.56.0/22 maxlen: 22 185.138.56.0/24 maxlen: 24 185.138.57.0/24 maxlen: 24 193.202.88.0/24 maxlen: 24 2a07:a80::/29 maxlen: 29 2a07:a80::/40 maxlen: 40 2a07:a80:100::/40 maxlen: 40 2a07:a80:200::/40 maxlen: 40 2a07:a80:300::/40 maxlen: 40 2a07:a80:b00::/40 maxlen: 40 Validation: OK Signature path: rsync://rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/ECeophKZuAo-cdGpgUJ-wAuEnRc.crl rsync://rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/ECeophKZuAo-cdGpgUJ-wAuEnRc.mft rsync://rpki.ripe.net/repository/DEFAULT/ECeophKZuAo-cdGpgUJ-wAuEnRc.cer rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer Signature path expires: Tue 27 Jan 2026 14:01:45 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 01:9b:7b:36:9c:66:6c:70:13:2c:14:a2:51:46:3b:2e:30:d6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=1027a8a61299b80a3e71d1a981427ec00b849d17 Validity Not Before: Jan 1 20:18:54 2026 GMT Not After : Jul 1 00:00:00 2027 GMT Subject: CN=420b59434f34e4e08cd9ca244f6a8a0fa70f72d3 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:9a:c6:b2:49:cb:7d:16:59:e9:47:95:64:da:d1: f7:81:d1:dc:14:7f:e5:f5:d5:18:34:87:ea:9c:8f: ee:d9:dd:19:d4:c1:d3:ab:17:cc:2a:78:70:8b:2e: b6:65:69:64:1d:4b:03:0d:fe:8f:ef:9c:06:54:e6: 9e:04:d2:57:0d:62:7a:08:7a:b7:eb:b7:b0:c2:a6: 08:dd:96:62:59:e1:79:4a:53:5f:75:93:01:d8:9b: de:b7:b4:50:b0:c4:eb:9e:ea:61:a7:43:77:ae:76: 90:45:5f:84:bd:02:85:ef:96:fc:65:49:ce:99:d1: 66:7f:09:27:09:51:bf:4e:64:a7:ff:58:42:05:cd: 0f:92:bc:b2:b8:50:0f:84:10:aa:78:20:16:d6:81: 98:b8:78:81:08:7c:2b:73:3a:e0:fd:cd:84:18:b4: 8c:0b:a0:89:5e:e6:a6:77:3c:b6:71:e4:6b:f7:e3: a1:02:08:ab:67:72:a0:9b:6c:be:16:9d:70:59:36: 0d:88:07:61:37:36:55:f0:b2:91:73:56:68:65:87: 44:b8:96:6b:23:f9:0f:6d:d3:70:21:ba:ec:f8:bb: 04:08:d9:49:ad:d2:a2:ee:fd:c9:d5:ce:ff:9b:ad: 24:3d:39:60:9e:c3:0b:0d:61:d2:fe:0e:f8:3e:97: 53:7f Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 42:0B:59:43:4F:34:E4:E0:8C:D9:CA:24:4F:6A:8A:0F:A7:0F:72:D3 X509v3 Authority Key Identifier: keyid:10:27:A8:A6:12:99:B8:0A:3E:71:D1:A9:81:42:7E:C0:0B:84:9D:17 X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ECeophKZuAo-cdGpgUJ-wAuEnRc.cer Subject Information Access: Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/QgtZQ0805OCM2cokT2qKD6cPctM.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.ripe.net/repository/DEFAULT/2a/ba9d13-8ca6-4577-a59c-9dd997eef4ef/1/ECeophKZuAo-cdGpgUJ-wAuEnRc.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 95.142.110.0/24 185.138.56.0/22 193.202.88.0/24 IPv6: 2a07:a80::/29 Signature Algorithm: sha256WithRSAEncryption b0:4f:04:d1:c3:37:e6:79:9a:fa:ef:7f:9b:e3:2d:f5:4f:5c: f4:0d:2f:92:d5:e2:93:93:13:68:48:7c:19:d7:bc:4d:70:84: 14:ac:a0:22:03:a7:d8:80:39:a7:ba:b3:ee:39:7b:1e:31:9d: fc:e7:2e:a2:7b:84:55:a2:1d:47:a5:b0:2a:9b:f1:7f:56:7e: da:ef:92:e8:60:56:69:80:16:da:f6:ec:71:9a:0a:b6:64:66: 72:16:ce:1e:5b:17:27:60:46:4a:41:87:33:ff:16:9e:98:e9: 3b:5e:35:78:5d:cb:3c:ea:2e:1a:7f:4f:ec:93:2e:d9:10:a7: e9:64:48:5a:21:c2:ec:08:07:8b:6e:a4:8c:1b:68:22:9d:8c: b8:8a:2b:88:14:55:49:fb:86:e5:ce:06:9f:89:b7:2a:11:9f: 80:32:d0:72:b8:6e:2d:1e:df:ec:fb:18:b3:cb:54:18:cb:94: f4:ca:6d:ff:73:ce:9d:d5:ae:29:5e:23:ba:5a:1d:19:bd:d8: d0:b9:3c:b9:7b:a0:34:40:ca:e1:63:a7:9b:98:30:f7:2f:ab: b6:a3:28:b0:36:a1:61:bc:18:cd:02:3d:b5:3d:d0:30:98:f0: 68:aa:9a:5b:4b:a8:e5:de:76:4f:87:f6:ce:31:31:8f:25:2b: 1c:39:b6:dc -----BEGIN CERTIFICATE----- MIIFGDCCBACgAwIBAgISAZt7NpxmbHATLBSiUUY7LjDWMA0GCSqGSIb3DQEBCwUA MDMxMTAvBgNVBAMTKDEwMjdhOGE2MTI5OWI4MGEzZTcxZDFhOTgxNDI3ZWMwMGI4 NDlkMTcwHhcNMjYwMTAxMjAxODU0WhcNMjcwNzAxMDAwMDAwWjAzMTEwLwYDVQQD Eyg0MjBiNTk0MzRmMzRlNGUwOGNkOWNhMjQ0ZjZhOGEwZmE3MGY3MmQzMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmsaySct9FlnpR5Vk2tH3gdHcFH/l 9dUYNIfqnI/u2d0Z1MHTqxfMKnhwiy62ZWlkHUsDDf6P75wGVOaeBNJXDWJ6CHq3 67ewwqYI3ZZiWeF5SlNfdZMB2Jvet7RQsMTrnuphp0N3rnaQRV+EvQKF75b8ZUnO mdFmfwknCVG/TmSn/1hCBc0PkryyuFAPhBCqeCAW1oGYuHiBCHwrczrg/c2EGLSM C6CJXuamdzy2ceRr9+OhAgirZ3Kgm2y+Fp1wWTYNiAdhNzZV8LKRc1ZoZYdEuJZr I/kPbdNwIbrs+LsECNlJrdKi7v3J1c7/m60kPTlgnsMLDWHS/g74PpdTfwIDAQAB o4ICJDCCAiAwHQYDVR0OBBYEFEILWUNPNOTgjNnKJE9qig+nD3LTMB8GA1UdIwQY MBaAFBAnqKYSmbgKPnHRqYFCfsALhJ0XMA4GA1UdDwEB/wQEAwIHgDBkBggrBgEF BQcBAQRYMFYwVAYIKwYBBQUHMAKGSHJzeW5jOi8vcnBraS5yaXBlLm5ldC9yZXBv c2l0b3J5L0RFRkFVTFQvRUNlb3BoS1p1QW8tY2RHcGdVSi13QXVFblJjLmNlcjCB jQYIKwYBBQUHAQsEgYAwfjB8BggrBgEFBQcwC4ZwcnN5bmM6Ly9ycGtpLnJpcGUu bmV0L3JlcG9zaXRvcnkvREVGQVVMVC8yYS9iYTlkMTMtOGNhNi00NTc3LWE1OWMt OWRkOTk3ZWVmNGVmLzEvUWd0WlEwODA1T0NNMmNva1QycUtENmNQY3RNLnJvYTCB gQYDVR0fBHoweDB2oHSgcoZwcnN5bmM6Ly9ycGtpLnJpcGUubmV0L3JlcG9zaXRv cnkvREVGQVVMVC8yYS9iYTlkMTMtOGNhNi00NTc3LWE1OWMtOWRkOTk3ZWVmNGVm LzEvRUNlb3BoS1p1QW8tY2RHcGdVSi13QXVFblJjLmNybDAYBgNVHSABAf8EDjAM MAoGCCsGAQUFBw4CMDoGCCsGAQUFBwEHAQH/BCswKTAYBAIAATASAwQAX45uAwQC uYo4AwQAwcpYMA0EAgACMAcDBQMqBwqAMA0GCSqGSIb3DQEBCwUAA4IBAQCwTwTR wzfmeZr673+b4y31T1z0DS+S1eKTkxNoSHwZ17xNcIQUrKAiA6fYgDmnurPuOXse MZ385y6ie4RVoh1HpbAqm/F/Vn7a75LoYFZpgBba9uxxmgq2ZGZyFs4eWxcnYEZK QYcz/xaemOk7XjV4Xcs86i4af0/sky7ZEKfpZEhaIcLsCAeLbqSMG2ginYy4iiuI FFVJ+4blzgafibcqEZ+AMtByuG4tHt/s+xizy1QYy5T0ym3/c86d1a4pXiO6Wh0Z vdjQuTy5e6A0QMrhY6ebmDD3L6u2oyiwNqFhvBjNAj21PdAwmPBoqppbS6jl3nZP h/bOMTGPJSscObbc -----END CERTIFICATE-----Generated at Mon Jan 26 22:36:11 2026 by rpki-client